Apache Tomcat 7.0.21 Released

09/02/2011

The Apache Tomcat team released version 7.0.21 today, which fixes some bugs and addresses some security issues. Some of the more important changes in this release, which were summarized in the release announcement, include:

A fix for CVE-2011-3190 that allowed an attacker to inject requests when Tomcat was configured behind a reverse proxy using the AJP protocol.
Multiple additions and improvements to the memory leak detection/prevention features.
Improved validation of received AJP messages.

The changelog lists all of the changes in this release and you can download a copy from a mirror near you.

Posted by Chris Mahns at 08:39:19 AM in tomcat | Permalink | Comments (0) | TrackBack (0)

TrackBack

TrackBack URL for this entry:
https://www.typepad.com/services/trackback/6a01156fbc6fe6970c0153913d47dd970b

Listed below are links to weblogs that reference Apache Tomcat 7.0.21 Released:

Comments

View the entire comment thread.

Blogging Techstacks

A blog, support, and help resource for web site systems adminstrators, developers, and engineers.

09/02/2011

Apache Tomcat 7.0.21 Released

TrackBack

Comments

Search This Site

Popular Pages

Archives

Get Updates via Email

Categories